Robert Falcone, Author at Unit42

11,834

people reacted

xHunt Actor’s Cheat Sheet

By Robert Falcone
December 4, 2019 at 8:00 PM

19 min. read

23,587

people reacted

More xHunt – New PowerShell Backdoor Blocked Through DNS Tunnel Detection

By Robert Falcone and Brittany Ash
October 10, 2019 at 5:00 AM

11 min. read

38,226

people reacted

xHunt Campaign: Attacks on Kuwait Shipping and Transportation Organizations

By Robert Falcone and Brittany Ash
September 23, 2019 at 6:00 AM

22 min. read

37,687

people reacted

Emissary Panda Attacks Middle East Government Sharepoint Servers

By Robert Falcone and Tom Lancaster
May 28, 2019 at 6:00 AM

13 min. read

44,496

people reacted

Behind the Scenes with OilRig

By Bryan Lee and Robert Falcone
April 30, 2019 at 6:00 AM

24 min. read

32,350

people reacted

Aggah Campaign: Bit.ly, BlogSpot, and Pastebin Used for C2 in Large Scale Campaign

By Robert Falcone and Brittany Ash
April 17, 2019 at 12:01 AM

14 min. read

DNS Tunneling in the Wild: Overview of OilRig’s DNS Tunneling

By Robert Falcone
April 16, 2019 at 9:00 AM

37 min. read

25,462

people reacted

New Python-Based Payload MechaFlounder Used by Chafer

By Robert Falcone and Brittany Ash
March 4, 2019 at 6:00 AM

8 min. read

DarkHydrus delivers new Trojan that can use Google Drive for C2 communications

By Robert Falcone and Bryan Lee
January 18, 2019 at 10:40 AM

14 min. read

Shamoon 3: Modified Open-Source Wiper Contains Verse from the Quran

By Robert Falcone
December 19, 2018 at 9:00 AM

10 min. read

25,431

people reacted

Sofacy Creates New ‘Go’ Variant of Zebrocy Tool

By Robert Falcone
December 18, 2018 at 6:00 AM

10 min. read

Shamoon 3 Targets Oil and Gas Organization

By Robert Falcone
December 13, 2018 at 10:52 AM

6 min. read

Dear Joohn: The Sofacy Group’s Global Campaign

By Bryan Lee and Robert Falcone
December 12, 2018 at 6:00 AM

14 min. read

19,998

people reacted

Sofacy Continues Global Attacks and Wheels Out New ‘Cannon’ Trojan

By Robert Falcone and Bryan Lee
November 20, 2018 at 6:00 AM

13 min. read

12,165

people reacted

Analyzing OilRig’s Ops Tempo from Testing to Weaponization to Delivery

By Robert Falcone and Kyle Wilhoit
November 16, 2018 at 8:00 AM

15 min. read

Posts created by: Robert Falcone

xHunt Actor’s Cheat Sheet

More xHunt – New PowerShell Backdoor Blocked Through DNS Tunnel Detection

xHunt Campaign: Attacks on Kuwait Shipping and Transportation Organizations

Emissary Panda Attacks Middle East Government Sharepoint Servers

Behind the Scenes with OilRig

Aggah Campaign: Bit.ly, BlogSpot, and Pastebin Used for C2 in Large Scale Campaign

DNS Tunneling in the Wild: Overview of OilRig’s DNS Tunneling

New Python-Based Payload MechaFlounder Used by Chafer

DarkHydrus delivers new Trojan that can use Google Drive for C2 communications

Shamoon 3: Modified Open-Source Wiper Contains Verse from the Quran

Sofacy Creates New ‘Go’ Variant of Zebrocy Tool

Shamoon 3 Targets Oil and Gas Organization

Dear Joohn: The Sofacy Group’s Global Campaign

Sofacy Continues Global Attacks and Wheels Out New ‘Cannon’ Trojan

Analyzing OilRig’s Ops Tempo from Testing to Weaponization to Delivery

Popular Resources

Legal Notices

Account

Trending

Popular Resources

Legal Notices

Account